$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.mft File: lSamckeK-nVEXY0H3MV8BYlm7-I.mft (raw, json) Hash identifier: AaMGr1AZ05Fi4XlU4/5Xm5WDaWsPM3wgP2mPl6qW61Y= Subject key identifier: 3F:2E:A9:96:01:DE:AB:79:99:FB:8D:BD:FF:25:DD:BE:73:68:B0:91 Authority key identifier: 95:26:A6:72:47:8A:FA:75:44:5D:8D:07:DC:C5:7C:05:89:66:EF:E2 Certificate issuer: /CN=A91FA1BE/serialNumber=9526A672478AFA75445D8D07DCC57C058966EFE2 Certificate serial: 01CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSamckeK-nVEXY0H3MV8BYlm7-I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.mft Manifest number: 01C5 Signing time: Thu 21 Nov 2024 01:45:52 +0000 Manifest this update: Thu 21 Nov 2024 01:45:52 +0000 Manifest next update: Thu 28 Nov 2024 01:45:52 +0000 Files and hashes: 1: lSamckeK-nVEXY0H3MV8BYlm7-I.crl (hash: qSFb8q4EVX4gkn9xQRFajKBzq2Z3/5C+cWinqGRgwVc=) 2: 6F46908C2D3411ED92165562C4F9AE02.roa (hash: 4gZpKbAZ3PPZ8XY+4tRmnbJCoHSToqpiZD3Xw35DspI=) 3: 6E98B3182D3411ED92165562C4F9AE02.roa (hash: lDaMLlKkOnOEtKB4HQw14YL4MByHOHikQc7Dy/TLNpg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.crl rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSamckeK-nVEXY0H3MV8BYlm7-I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 459 (0x1cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA1BE/serialNumber=9526A672478AFA75445D8D07DCC57C058966EFE2 Validity Not Before: Nov 21 01:45:52 2024 GMT Not After : Nov 28 01:45:52 2024 GMT Subject: CN=673e90d0-4ab6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:9e:8b:03:7a:aa:5a:50:df:fe:1b:97:7c:66: a3:7a:b3:4c:0b:74:4a:6e:75:a7:c7:50:dc:b5:b5: a3:23:18:b4:cb:5c:7b:50:ab:12:ae:b7:c9:97:a4: e2:71:ba:1b:ba:b9:79:bc:39:29:05:3d:6a:11:68: 8f:83:32:fb:85:ca:62:63:f3:07:98:33:0d:dd:d3: 51:6c:42:ab:44:51:03:e1:d3:ec:2e:49:df:eb:d2: b9:bc:64:9b:9a:3c:70:e9:90:c3:9e:04:a6:64:00: 6b:7f:7c:d0:ff:49:71:8a:42:13:87:5b:d3:bd:e8: 31:bf:fb:43:7f:48:ff:58:3a:5c:0c:6f:6a:78:cf: 55:b3:9a:2c:80:d8:67:97:81:ea:ea:12:0e:88:a5: 9f:27:1e:00:80:db:02:d5:f9:48:3f:ba:65:89:eb: 59:29:2b:f4:c4:2a:ae:f4:28:26:bb:21:e9:03:57: 10:b9:0f:eb:e0:dc:5b:38:33:eb:ff:f4:e5:18:a5: fe:ba:86:07:8f:f7:67:ff:de:95:02:52:c0:45:71: b4:44:ec:9f:8d:9d:03:f5:a1:5d:7a:48:84:f6:32: d5:59:0b:a6:9e:bf:fe:66:dd:3a:ce:aa:36:1c:5c: 6d:4c:74:c7:73:c1:c2:95:4d:71:0e:90:0e:1e:62: 10:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:2E:A9:96:01:DE:AB:79:99:FB:8D:BD:FF:25:DD:BE:73:68:B0:91 X509v3 Authority Key Identifier: keyid:95:26:A6:72:47:8A:FA:75:44:5D:8D:07:DC:C5:7C:05:89:66:EF:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSamckeK-nVEXY0H3MV8BYlm7-I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA1BE/4168FF762D3211ED92B8B761C4F9AE02/lSamckeK-nVEXY0H3MV8BYlm7-I.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:d0:ee:c8:f0:6a:f0:c6:38:b7:30:2e:d1:64:d1:89:2d:c0: d1:ca:4e:a3:fc:dc:e9:b9:c8:6f:a2:ab:90:1a:32:1e:fd:2c: 64:a7:2c:b3:e3:c6:cb:a4:06:21:8e:ac:2e:34:16:2d:52:80: db:05:93:44:17:7e:5d:70:ad:33:73:dc:82:73:fe:4d:06:57: 6a:b3:d2:51:50:b4:bd:e8:12:b4:6a:35:48:0b:43:bc:b2:14: b1:0a:29:c2:82:e8:8d:9a:e4:0e:9a:22:1b:6a:72:bc:c8:65: 00:8f:6b:f4:6e:10:bd:cb:47:3e:8c:a3:4a:1f:66:54:7c:51: 5f:79:ae:1c:71:81:b4:64:39:58:f7:4a:82:bc:48:6a:68:93: a5:45:7f:6e:91:14:f3:29:80:da:e1:ae:30:cd:f3:cf:38:5c: 2e:f0:9c:73:a4:64:ae:93:98:85:78:73:da:c3:62:a1:a8:ae: e8:69:b3:ae:9d:e3:c7:25:27:85:56:c2:69:7f:79:e3:65:87: c9:68:95:e7:f1:52:d1:1a:5a:19:d3:ae:73:36:d5:0a:ab:d8: e9:75:64:eb:aa:88:0e:99:11:db:a5:c0:75:45:62:3d:5e:a4: 44:00:e8:3f:df:eb:d9:59:af:78:02:79:42:55:22:96:f3:56: ce:8a:7a:93 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkExQkUxMTAvBgNVBAUTKDk1MjZBNjcyNDc4QUZBNzU0NDVEOEQwN0RDQzU3QzA1 ODk2NkVGRTIwHhcNMjQxMTIxMDE0NTUyWhcNMjQxMTI4MDE0NTUyWjAYMRYwFAYD VQQDEw02NzNlOTBkMC00YWI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqZ6LA3qqWlDf/huXfGajerNMC3RKbnWnx1DctbWjIxi0y1x7UKsSrrfJl6Ti cboburl5vDkpBT1qEWiPgzL7hcpiY/MHmDMN3dNRbEKrRFED4dPsLknf69K5vGSb mjxw6ZDDngSmZABrf3zQ/0lxikITh1vTvegxv/tDf0j/WDpcDG9qeM9Vs5osgNhn l4Hq6hIOiKWfJx4AgNsC1flIP7plietZKSv0xCqu9CgmuyHpA1cQuQ/r4NxbODPr //TlGKX+uoYHj/dn/96VAlLARXG0ROyfjZ0D9aFdekiE9jLVWQumnr/+Zt06zqo2 HFxtTHTHc8HClU1xDpAOHmIQIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD8uqZYB 3qt5mfuNvf8l3b5zaLCRMB8GA1UdIwQYMBaAFJUmpnJHivp1RF2NB9zFfAWJZu/i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTFCRS80MTY4RkY3NjJE MzIxMUVEOTJCOEI3NjFDNEY5QUUwMi9sU2FtY2tlSy1uVkVYWTBIM01WOEJZbG03 LUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xTYW1ja2VLLW5WRVhZMEgzTVY4QllsbTctSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTFCRS80MTY4RkY3NjJEMzIxMUVEOTJCOEI3NjFDNEY5QUUwMi9sU2FtY2tlSy1u VkVYWTBIM01WOEJZbG03LUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBR0O7I8Grwxji3MC7RZNGJLcDRyk6j/NzpuchvoquQGjIe/Sxkpyyz 48bLpAYhjqwuNBYtUoDbBZNEF35dcK0zc9yCc/5NBldqs9JRULS96BK0ajVIC0O8 shSxCinCguiNmuQOmiIbanK8yGUAj2v0bhC9y0c+jKNKH2ZUfFFfea4ccYG0ZDlY 90qCvEhqaJOlRX9ukRTzKYDa4a4wzfPPOFwu8JxzpGSuk5iFeHPaw2KhqK7oabOu nePHJSeFVsJpf3njZYfJaJXn8VLRGloZ065zNtUKq9jpdWTrqogOmRHbpcB1RWI9 XqREAOg/3+vZWa94AnlCVSKW81bOinqT -----END CERTIFICATE-----Generated at Thu Nov 21 03:12:09 2024 by rpki-client on console-fra.rpki-client.org